Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/fb823f-7296-4279-9721-92e08ba5e2bf/1/fruwWtnukSfisePwGff_0GC4Mao.roa
File: fruwWtnukSfisePwGff_0GC4Mao.roa (raw, json)
Hash identifier: v+Z+n+sCaN3bjTkkUnWNOlkPwH30MVWGX2RHe+87Yqg=
Subject key identifier: 7E:BB:B0:5A:D9:EE:91:27:E2:B1:E3:F0:19:F7:FF:D0:60:B8:31:AA
Certificate issuer: /CN=3fafd07dc086dd7feec69e64e094dee5f49cea7d
Certificate serial: 018E14DF48913342B5323333B381283411CF
Authority key identifier: 3F:AF:D0:7D:C0:86:DD:7F:EE:C6:9E:64:E0:94:DE:E5:F4:9C:EA:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P6_QfcCG3X_uxp5k4JTe5fSc6n0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/fb823f-7296-4279-9721-92e08ba5e2bf/1/fruwWtnukSfisePwGff_0GC4Mao.roa
Signing time: Wed 06 Mar 2024 17:46:01 +0000
ROA not before: Wed 06 Mar 2024 17:46:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215358
IP address blocks: 193.35.110.0/24 maxlen: 24
195.128.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/fb823f-7296-4279-9721-92e08ba5e2bf/1/P6_QfcCG3X_uxp5k4JTe5fSc6n0.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/fb823f-7296-4279-9721-92e08ba5e2bf/1/P6_QfcCG3X_uxp5k4JTe5fSc6n0.mft
rsync://rpki.ripe.net/repository/DEFAULT/P6_QfcCG3X_uxp5k4JTe5fSc6n0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 02:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:14:df:48:91:33:42:b5:32:33:33:b3:81:28:34:11:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fafd07dc086dd7feec69e64e094dee5f49cea7d
Validity
Not Before: Mar 6 17:46:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ebbb05ad9ee9127e2b1e3f019f7ffd060b831aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:74:0f:b3:ca:e1:44:3e:f9:01:ba:ee:ab:79:
bf:d1:94:3a:90:92:b3:da:f6:6f:fb:32:76:34:25:
9d:85:55:61:fe:f5:6d:de:5a:d7:a9:28:e7:87:d9:
ee:08:c7:63:c8:72:4c:e6:59:9c:72:fb:4c:fa:4e:
6f:16:f9:2d:76:db:dd:7e:05:e7:5f:3f:1d:f5:a5:
12:c8:04:cc:60:8e:ed:ba:3a:64:2e:2d:fc:d6:56:
bb:fa:ae:45:c6:2e:f7:25:2e:64:1e:29:62:df:e7:
f8:53:3c:3d:f3:7b:e5:3e:fb:8e:20:4b:c7:11:85:
1e:8a:96:99:05:92:5c:67:d2:b3:62:24:08:5c:44:
e6:e4:be:55:cf:85:13:3e:41:20:a6:78:64:9b:54:
cf:7b:4a:ee:74:bc:2f:01:6f:84:e6:a2:ec:64:ef:
3d:4a:36:ea:2f:3c:ae:b8:af:62:fc:d5:e8:19:d6:
9c:24:73:6a:f5:7b:3c:8a:25:41:19:c1:49:31:e2:
58:56:38:83:e7:4f:34:ba:f8:c9:8f:85:38:c4:2b:
0b:4d:43:6f:46:d9:57:ea:7b:52:34:6d:bf:3c:1d:
08:ee:a6:88:5b:b9:0a:55:86:fe:e4:a3:4f:74:92:
05:09:7b:ba:49:e6:eb:36:da:4d:03:24:3f:b5:e8:
75:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:BB:B0:5A:D9:EE:91:27:E2:B1:E3:F0:19:F7:FF:D0:60:B8:31:AA
X509v3 Authority Key Identifier:
keyid:3F:AF:D0:7D:C0:86:DD:7F:EE:C6:9E:64:E0:94:DE:E5:F4:9C:EA:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P6_QfcCG3X_uxp5k4JTe5fSc6n0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/fb823f-7296-4279-9721-92e08ba5e2bf/1/fruwWtnukSfisePwGff_0GC4Mao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/fb823f-7296-4279-9721-92e08ba5e2bf/1/P6_QfcCG3X_uxp5k4JTe5fSc6n0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.110.0/24
195.128.154.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:e7:06:50:76:55:a1:b5:2d:85:9e:3b:30:c7:3f:b9:59:d0:
2f:b5:8a:02:6b:91:45:bb:10:13:8f:2e:59:56:3f:ea:d4:e5:
e1:e1:99:44:57:e1:e0:db:42:af:3d:e1:2e:05:bb:10:c3:5d:
b8:e2:61:68:27:db:f0:0b:c3:c6:d1:55:0b:62:20:d3:f1:d6:
af:83:76:30:98:c9:ec:39:e6:54:f2:dc:ac:20:f9:1b:ff:2d:
c4:60:8d:ea:ae:90:cf:31:4b:f0:aa:7e:7a:cb:ef:da:70:6d:
a0:88:f3:2e:cd:54:8d:a2:7e:21:8b:ac:16:38:c0:c9:2e:61:
7a:90:01:41:ef:71:98:a4:21:2b:78:2b:43:aa:aa:e5:3c:4b:
83:3d:d8:57:19:fa:aa:7a:69:b7:e6:a3:cf:b4:3e:54:d6:73:
1e:bc:d0:2a:b8:20:4e:bb:16:21:9d:ff:e8:db:e8:f1:7e:c7:
76:2a:95:51:a7:f2:b7:a6:0f:36:0e:f4:6d:5c:46:f6:e4:2b:
0a:f8:a7:d0:74:95:85:91:09:9d:0d:7e:8e:26:31:7c:51:c7:
45:2f:5c:a4:0f:b2:8b:9a:20:19:00:50:c9:18:c0:5b:c3:0e:
dd:f8:64:bb:c9:39:b8:08:e9:52:b7:85:25:43:8a:00:dc:db:
30:49:d0:08
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY4U30iRM0K1MjMzs4EoNBHPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNmYWZkMDdkYzA4NmRkN2ZlZWM2OWU2NGUwOTRkZWU1ZjQ5
Y2VhN2QwHhcNMjQwMzA2MTc0NjAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZWJiYjA1YWQ5ZWU5MTI3ZTJiMWUzZjAxOWY3ZmZkMDYwYjgzMWFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj3QPs8rhRD75Abruq3m/0ZQ6kJKz
2vZv+zJ2NCWdhVVh/vVt3lrXqSjnh9nuCMdjyHJM5lmccvtM+k5vFvktdtvdfgXn
Xz8d9aUSyATMYI7tujpkLi381la7+q5Fxi73JS5kHili3+f4Uzw983vlPvuOIEvH
EYUeipaZBZJcZ9KzYiQIXETm5L5Vz4UTPkEgpnhkm1TPe0rudLwvAW+E5qLsZO89
SjbqLzyuuK9i/NXoGdacJHNq9Xs8iiVBGcFJMeJYVjiD5080uvjJj4U4xCsLTUNv
RtlX6ntSNG2/PB0I7qaIW7kKVYb+5KNPdJIFCXu6SebrNtpNAyQ/teh1UwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFH67sFrZ7pEn4rHj8Bn3/9BguDGqMB8GA1UdIwQY
MBaAFD+v0H3Aht1/7saeZOCU3uX0nOp9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUDZfUWZjQ0czWF91eHA1azRKVGU1ZlNjNm4wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9mYjgyM2YtNzI5Ni00Mjc5LTk3MjEt
OTJlMDhiYTVlMmJmLzEvZnJ1d1d0bnVrU2Zpc2VQd0dmZl8wR0M0TWFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy9mYjgyM2YtNzI5Ni00Mjc5LTk3MjEtOTJlMDhiYTVlMmJm
LzEvUDZfUWZjQ0czWF91eHA1azRKVGU1ZlNjNm4wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwSNuAwQA
w4CaMA0GCSqGSIb3DQEBCwUAA4IBAQCO5wZQdlWhtS2Fnjswxz+5WdAvtYoCa5FF
uxATjy5ZVj/q1OXh4ZlEV+Hg20KvPeEuBbsQw1244mFoJ9vwC8PG0VULYiDT8dav
g3YwmMnsOeZU8tysIPkb/y3EYI3qrpDPMUvwqn56y+/acG2giPMuzVSNon4hi6wW
OMDJLmF6kAFB73GYpCEreCtDqqrlPEuDPdhXGfqqemm35qPPtD5U1nMevNAquCBO
uxYhnf/o2+jxfsd2KpVRp/K3pg82DvRtXEb25CsK+KfQdJWFkQmdDX6OJjF8UcdF
L1ykD7KLmiAZAFDJGMBbww7d+GS7yTm4COlSt4UlQ4oA3NswSdAI
-----END CERTIFICATE-----
Generated at Tue Nov 26 11:41:36 2024 by rpki-client on console-fra.rpki-client.org